DLA Piper Privacy Matters

SEPTEMBER 10, 2018

Italian privacy law integrating the GDPR is finally in place, but a number of provisions remain unclear, but need immediate action. The Italian Privacy Code changes after the GDPR. The result is a very confusing text which inevitably cannot be 100% aligned to the GDPR and might contain mistakes.

GDPR 49

GDPR Privacy Compliance Marketing 49

DLA Piper Privacy Matters

MAY 25, 2020

Just as the second anniversary of the GDPR was looming close, the Data Protection Ombudsman’s collegial body, responsible for determining administrative fines in Finland, issued administrative fines against three Finnish companies for their infringements of data protection laws. THREE ADMINISTRATIVE FINES ISSUED IN FINLAND.

GDPR 52

GDPR IT Personal data Privacy 52

DLA Piper Privacy Matters

MAY 14, 2018

The Italian privacy law integrating the GDPR has been finalized by the Board of Ministers, unveiling unexpected surprises a few days before the 25th of May 2018. Below are my top 5 derogations to the GDPR provided by the Italian privacy law: 1. Criminal sanctions for privacy breaches confirmed.

GDPR 45

GDPR Privacy Systems administration Compliance 45

HL Chronicle of Data Protection

SEPTEMBER 14, 2018

101 of 10 August 2018 (the “Decree”) for the national implementation of General Data Protection Regulation (EU) 2016/679 (the “GDPR”) has been published in the Official Journal. The provisions of the Privacy Code adopted to implement the e-Privacy Directive will of course remain in force.

GDPR 40

GDPR Personal data Privacy Communications 40

IT Governance

JUNE 25, 2018

We all know by now that, on 25 May 2018, the General Data Protection Regulation (GDPR) came into effect. The GDPR is not an IT issue. Rather, it is a business issue: organisations in every sector collect, access and use personal data for many purposes – hiring, marketing, sales, customer service and so on.

Retail 71

Retail GDPR IT Compliance 71

Data Matters

JUNE 29, 2018

Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375). This legislation was enacted on an extraordinarily accelerated timeframe as part of compromise with the sponsor of a comparable privacy ballot initiative, which had qualified to be placed before state voters on Election Day in November 2018.

GDPR 60

GDPR Privacy Sales Data breaches 60

ARMA International

APRIL 18, 2022

These records are typically organized by grouping them by function or department and then described as either an individual record or grouped together into a record category. Countries and organizations within the European Union (EU), must comply with the requirements of the General Data Protection Regulation (GDPR) 1.

Personal data 100

Personal data GDPR Privacy Records Management 100

Data Matters

NOVEMBER 4, 2020

The results are in, and California voters have approved the California Privacy Rights Act (CPRA) which was listed on the ballot as Proposition 24. Even so, with these and other new requirements, the CPRA does not go as far as some consumer privacy advocates had hoped it would.

Privacy 122

Privacy B2B Sales Data breaches 122

DLA Piper Privacy Matters

APRIL 9, 2018

Italian companies can now rely on guidelines on how to comply with the European privacy regulation (GDPR) which unvail some interesting positions. . health related data that are now incorporated in the broader “ special ” category of data) and to the processing based on automated decision making, including profiling.

GDPR 40

GDPR Personal data Privacy Data breaches 40

DLA Piper Privacy Matters

FEBRUARY 11, 2020

It will focus its attention on specific industry sectors as well as on specific GDPR topics and societal themes. The DPA will be especially focussing on enhancing GDPR compliance in the following industry sectors: Telecom and media sector , due to the large amount of data they process. 3 GDPR TOPICS OF PARTICULAR ATTENTION.

IT 81

IT GDPR Compliance Personal data 81

DLA Piper Privacy Matters

DECEMBER 3, 2021

Reassuringly, the PDPL does not contain any major divergences from other well-known data protection regimes, including the GDPR. International businesses with global privacy compliance programs should seek to expand those to cover the UAE and achieve some synergies.

Personal data 105

Personal data Data breaches GDPR Compliance 105

Hunton Privacy

JULY 11, 2019

Although McDougall pointed to various areas of the industry that are causing the regulator concern, he stated that the ICO’s focus in the short-term is primarily on the use of special category (also known as sensitive) data processed as part of real-time bidding, such as race, religion and mental health. This is simple stuff.”.

GDPR 55

GDPR Marketing Personal data Compliance 55

Hunton Privacy

JULY 1, 2019

The report focuses on whether and how organizations in the adtech sector can comply with the EU General Data Protection Regulation (“GDPR”) and the UK’s implementation of the e-Privacy Directive, known as the Privacy and Electronic Communications Regulations (“PECR”).

GDPR 48

GDPR Personal data Privacy Communications 48

IT Governance

NOVEMBER 23, 2018

They are a useful accountability tool: the results of a DPIA will help you demonstrate that you have taken the appropriate technical and organisational measures required by the GDPR (General Data Protection Regulation). Data controllers are responsible for conducting DPIAs as required by Article 35 of the GDPR.

GDPR 67

GDPR Personal data Risk Marketing 67

IT Governance

JUNE 19, 2019

The GDPR (General Data Protection Regulation) requires organisations to conduct a DPIA (data protection impact assessment) whenever processing is ‘likely to result in a high risk’ to the rights and freedoms of individuals. Damage : the effects on the individual if a data breach or privacy violation occurs. What does ‘high risk’ mean?

GDPR 73

GDPR Personal data Risk Data breaches 73

DLA Piper Privacy Matters

AUGUST 23, 2021

Rather than bringing substantial changes to the existing China data privacy framework, the PIPL helpfully consolidates and clarifies obligations on processing of personal information at a national law level. To be clear, this is not China’s own GDPR.

Data Privacy 111

Data Privacy Privacy Compliance Analytics 111

DLA Piper Privacy Matters

OCTOBER 10, 2022

For example, the ML system could be used to determine likely trends of categories of persons to default on loan agreements through the processing of financial default information. In this article we elaborate on some of these clarifications in the context of a world of developing AI and data privacy frameworks.

Personal data 98

Personal data GDPR Privacy Marketing 98

Security Affairs

JULY 3, 2023

Semi-Structured Data: Semi-structured data lies between the structured and unstructured categories. Organizations may face penalties, fines, or legal actions if they fail to comply with data privacy regulations, such as the General Data Protection Regulation (GDPR) or the California Consumer Privacy Act (CCPA).

Unstructured data 94

Unstructured data Metadata Encryption Data structuring 94

Data Protection Report

JULY 9, 2018

states have recently introduced and passed legislation to expand data breach notification rules and to mirror some of the protections provided by Europe’s newly enacted General Data Protection Regulation (“GDPR”). See our previous blog posts on GDPR here and here. Several U.S. On the security front, as of March 2018, all 50 U.S.

GDPR 40

GDPR Data breaches Personal data Insurance 40

DLA Piper Privacy Matters

JULY 3, 2019

The ICO has identified adtech as a priority area for review, noting the pervasive growth of an industry which is reliant on making billions of decisions online about users on a daily basis, but where the privacy related requirements are often misunderstood and often poorly applied, exposing users to potential risk. RTB – what is it?

GDPR 51

GDPR Data collection Personal data Marketing 51

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

Consumer privacy rights in California are well established. The California Constitution expressly grants California citizens a right to privacy. The International Association of Privacy Professionals estimates at least 500,000 U.S. The ballot initiative largely mirrored what is now the language in the CCPA.

Privacy 58

Privacy Sales Education Compliance 58

HL Chronicle of Data Protection

JUNE 28, 2018

California continues to be a first mover in privacy in the United States, enacting the US’s toughest and most comprehensive privacy legislation on Thursday, June 28, 2018. The new law was a fast-tracked effort to stave off an aggressive California privacy ballot initiative ( Ballot Initiative No.

Privacy 40

Privacy GDPR Marketing Data breaches 40

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

Consumer privacy rights in California are well established. The California Constitution expressly grants California citizens a right to privacy. The International Association of Privacy Professionals estimates at least 500,000 U.S. The ballot initiative largely mirrored what is now the language in the CCPA.

Privacy 58

Privacy Sales Compliance Cybersecurity 58

eDiscovery Daily

OCTOBER 20, 2019

Speakers Include: Daniel Pelc – Senior Manager, Industry Marketing, Relativity; John Koss – Special Counsel, Mintz Levin; Kimberly Fisher – Senior Practice Support Manager, Dickinson Wright PLLC; Kevin Clark – Litigation Support Manager, Thompson & Knight LLP. Internal perception. Attorney carve outs.

e-Discovery 40

e-Discovery Data Privacy Education Privacy 40

DLA Piper Privacy Matters

APRIL 26, 2021

The AI Regulation adopts a broad regulatory scope , covering all aspects of the lifecycle of the development, sale and use of AI systems, including: (i) placing AI systems on the market; (ii) putting AI systems into service; and. There are parallels here with the extra-territorial effect of the GDPR. iii) making use of AI systems.

Artificial Intelligence 114

Artificial Intelligence Risk Marketing GDPR 114

Data Protector

OCTOBER 11, 2017

Data is not just a resource for better marketing, better service and delivery. Noble Lords will be familiar with the role of the Information Commissioner, whose role is to uphold information rights in the public interest, promoting openness by public bodies and data privacy for individuals. Data is used to build products themselves.

GDPR 120

GDPR Personal data Government IT 120

Data Protection Report

DECEMBER 17, 2020

On 25 November 2020, the European Commission ( EC ) published its proposed Data Governance Regulation (the DGR ), which will create a new legal framework to encourage the development of a European single market for data. What are the other excluded categories? This is part two of a series of three blog posts. Is consent required?

Government 92

Government Personal data GDPR Access 92

Data Protection Report

MAY 16, 2019

The ICO recommends undertaking market research or compiling other evidence relating to user behaviour to ascertain (and help demonstrate) this. The ICO also specifically states that it is unlikely… that the commercial interests of an organisation will outweigh a child’s right to privacy. of the GDPR. The “Best Interests” Test.

Personal data 40

Personal data Privacy GDPR Access 40

Thales Cloud Protection & Licensing

NOVEMBER 30, 2020

In the November 3, 2020, election California voters upped the consumer digital privacy ante by passing Proposition 24, the California Privacy Rights Act (CPRA ). It amends the California Consumer Privacy Act (CCPA) and goes into effect January 1, 2023, for all data collected starting January 1, 2022 1. Are You Ready?

Privacy 62

Privacy GDPR Compliance Data breaches 62

Data Protection Report

DECEMBER 17, 2020

On 25 November 2020, the European Commission ( EC ) published its proposed Data Governance Regulation (the DGR ), which will create a new legal framework to encourage the development of a European single market for data. The EC’s Data Strategy sets out a vision of common European data spaces, a Single Market for data.

Government 102

Government Personal data Marketing Artificial Intelligence 102

DLA Piper Privacy Matters

DECEMBER 9, 2019

On 14 th November, the Information Commissioner’s Office (“ ICO ”) published an update to its guidance on the processing of special category data (“ Guidance ”). The General Data Protection Regulation (“ GDPR ”) recognises that some types of personal data are more sensitive than others, and as such merit extra protection under the law.

Personal data 59

Personal data GDPR Compliance IT 59

ARMA International

SEPTEMBER 27, 2021

This part also discusses managing CS risks such as ransomware, privacy, change management, and user adoption. Thus, common tools and techniques are risk matrices, risk registers, risk logs, risk breakdown structures, risk categories, Monte Carlo simulations, and sensitivity analyses. Jurisdiction and Privacy Data Risks.

Digital transformation 54

Digital transformation Risk IT Computer and Electronics 54

Data Matters

APRIL 27, 2022

Some of the key objectives of the new legislation include enabling the re-use of certain categories of protected public sector data and making it easier and safer for citizens and businesses to share their data with relevant stakeholders. The DGA is part of the European Commission’s broader digital and data strategy. Main pillars.

Marketing 88

Marketing Government Personal data Artificial Intelligence 88

Data Matters

JUNE 26, 2018

On June 25, 2018, California Secretary of State Alex Padilla announced that a potentially significant privacy initiative is eligible for the Nov. If passed, the ballot initiative — the California Consumer Privacy Act (CCPA) — would immediately make sweeping changes to California’s privacy laws. 6 general election ballot.

Privacy 60

Privacy GDPR Sales Data breaches 60

Data Protection Report

AUGUST 27, 2020

Organisations therefore also need to be prepared to justify the use of AFT for any given purpose and be able to explain why other, less privacy intrusive, means could not be used as an alternative. . Most of the lawful bases for processing under the EU General Data Protection Regulation ( GDPR ) require processing to be “necessary”.

Risk 59

Risk Retail IT GDPR 59